Index
Bugtraq
Pełna lista
Błędy
Sztuczki
Exploity
Dorks list
Tylko z CVE
Tylko z CWE
Bogus
Ranking
CVEMAP
Świeża lista CVE
Producenci
Produkty
Słownik CWE
Sprawdź nr. CVE
Sprawdź nr. CWE
Szukaj
W Bugtraq
W bazie CVE
Po autorze
Po nr. CVE
Po nr. CWE
Po producencie
Po produkcie
RSS
Bugtraq
CVEMAP
CVE Produkty
Tylko Błędy
Tylko Exploity
Tylko Dorks
Więcej
cIFrex
Facebook
Twitter
Donate
O bazie
Lang
Polish
English
Submit
CWE
:
Tytuł
Data
Autor
Low
Financials By Coda Cross Site Scripting
16.03.2024
Leo Draghi
Low
SnipeIT 6.2.1 Stored Cross Site Scripting
13.03.2024
Shahzaib Ali Khan
Low
FullCourt Enterprise 8.2 Cross Site Scripting
09.03.2024
Omar Sabagh
Med.
WordPress IDonate Blood Request Management System 1.8.1 Cross Site Scripting
29.02.2024
Laburity Research Team
Low
SitePad 1.8.2 Cross Site Scripting
22.02.2024
tmrswrr
Med.
OpenOLAT 18.1.5 Cross Site Scripting / Privilege Escalation
22.02.2024
Johannes Volpel
Low
SPA-CART CMS - Stored XSS
20.02.2024
Eren Sen
Med.
WonderCMS 4.3.2 Cross Site Scripting / Remote Code Execution
20.02.2024
prodigiousMind
Low
InstantCMS 2.16.1 Cross Site Scripting
20.02.2024
SoSPiro
Low
Savsoft Quiz v6.0 Enterprise - Persistent Cross-Site Scripting
20.02.2024
Eren Sen
Low
Statamic CMS Cross Site Scripting
18.02.2024
Niklas Schilling
High
Adapt CMS 3.0.3 Cross Site Scripting / Shell Upload
15.02.2024
Andrey Stoykov
Low
Wordpress simple urls Plugin < 115 XSS
15.02.2024
AmirZargham
Low
Advanced Page Visit Counter 1.0 Cross Site Scripting
10.02.2024
Furkan Ozer
Low
GYM MS 1.0 Cross Site Scripting
07.02.2024
yozgatalperen1
Low
WhatsUp Gold 2022 (22.1.0 Build 39) XSS
06.02.2024
Andreas Finstad
Low
WhatsUp Gold 2022 22.1.0 Build 39 Cross Site Scripting
06.02.2024
Andreas Finstad
Low
MISP 2.4.171 Cross Site Scripting
06.02.2024
Mucahit Ceri
Med.
WordPress POST SMTP Mailer 2.8.7 Authorization Bypass / Cross Site Scripting
13.01.2024
Ulyses Saicha
Low
PHPJabbers Cleaning Business Software 1.0 Cross Site Scripting
11.01.2024
Rahad Chowdhury
Low
PHPJabbers Event Ticketing System 1.0 Cross Site Scripting / HTML Injection
11.01.2024
Rahad Chowdhury
Low
PHPJabbers Shared Asset Booking System 1.0 Cross Site Scripting
11.01.2024
Rahad Chowdhury
Low
iGalerie 3.0.22 Cross Site Scripting
10.01.2024
tmrswrr
Low
WebCalendar 1.3.0 Cross Site Scripting
03.01.2024
tmrswrr
Low
WhatACart 2.0.7 Cross Site Scripting
27.12.2023
tmrswrr
Low
ShopSite 14.0 Cross Site Scripting
26.12.2023
tmrswrr
Low
GaatiTrack Courier Management System 1.0 Cross Site Scripting
20.11.2023
Rahad Chowdhury
Low
Shuttle Booking Software 2.0 Cross Site Scripting
20.11.2023
Rahad Chowdhury
Low
Moodle 4.3 Cross Site Scripting
23.10.2023
tmrswrr
Med.
WordPress Core 6.3.1 XSS / DoS / Arbitrary Shortcode Execution
13.10.2023
James Golovich
Low
WordPress Sonaar Music 4.7 Cross Site Scripting
10.10.2023
Furkan Karaarslan
Low
WordPress KiviCare 3.2.0 Cross Site Scripting
05.10.2023
Arvandy
Med.
SAP Enable Now Manager 10.6.5 Build 2804 Cloud Edition CSRF / XSS / Redirect
03.10.2023
Fabian Hagg
Low
openVIVA c2 20220101 Cross Site Scripting
03.10.2023
Daniel Hirschberger
Low
WordPress Contact Form Generator 2.5.5 Cross Site Scripting
03.10.2023
Arvandy
Med.
OPNsense 23.1.11_1 / 23.7.3 / 23.7.4 Cross Site Scripting / Privilege Escalation
25.09.2023
Yasar Klawohn
Low
Taskhub 2.8.8 Cross Site Scripting
24.09.2023
nu11secur1ty
Low
Night Club Booking Software 1.0 Cross Site Scripting
18.09.2023
nu11secur1ty
Low
Italia Mediasky CMS 2.0 Cross Site Scripting
18.09.2023
indoushka
Low
PTC - Codebeamer Cross Site Scripting
18.09.2023
Niklas Schilling
Low
Academy LMS 6.2 Cross Site Scripting
15.09.2023
CraCkEr
Med.
WordPress Slimstat Analytics 5.0.9 Cross Site Scripting / SQL Injection
13.09.2023
Lana Codes
Low
Cinema Booking System 1.0 Cross Site Scripting
10.09.2023
nu11secur1ty
Low
Event Booking Calendar 4.0 Cross Site Scripting
10.09.2023
nu11secur1ty
Low
Wordpress Sonaar Music Plugin 4.7 - Stored XSS
09.09.2023
Furkan Karaarslan
Low
Axigen 10.5.0–4370c946 Cross Site Scripting
09.09.2023
AmirZargham
Low
Axigen 10.5.0–4370c946 Cross Site Scripting
09.09.2023
AmirZargham
Low
CSZ CMS 1.3.0 Cross Site Scripting
04.09.2023
Daniel Gonzalez
Low
PHP JABBERS PHP Review Script 1.0 Cross Site Scripting
31.08.2023
nu11secur1ty
Low
Jorani 1.0.3 Cross Site Scripting
28.08.2023
nu11secur1ty
Low
User Registration And Login And User Management System 3.0 Cross Site Scripting
24.08.2023
Ashutosh Singh Umath
Low
Uvdesk 1.1.4 Cross Site Scripting
24.08.2023
Hubert Wojciechowski
Low
E-partenaire LMS 1.0.0 Cross Site Scripting
19.08.2023
indoushka
Low
Blood Donor Management System 1.0 Cross Site Scripting
16.08.2023
Ehlullah Albayrak
High
Hyip Rio 2.1 Cross Site Scripting / File Upload
16.08.2023
CraCkEr
Low
Advantech EKI-1524-CE / EKI-1522 / EKI-1521 Cross Site Scripting
15.08.2023
T. Weber
Med.
Phoenix Contact TC Cloud / TC Router 2.x XSS / Memory Consumption
15.08.2023
T. Weber
Low
Webedition CMS v2.9.8.8 Stored XSS
13.08.2023
Mirabbas Ağalarov
Low
Dolibarr 17.0.1>x Stored XSS
11.08.2023
Furkan Karaarslan
Low
Joomla VirtueMart Shopping Cart 4.0.12 Reflected XSS
11.08.2023
CraCkEr
Low
JLex GuestBook 1.6.4 Reflected XSS
10.08.2023
CraCkEr
Low
Lucee 5.4.2.17 Cross Site Scripting
09.08.2023
Yehia Elghaly
Low
WordPress Ninja Forms 3.6.25 Cross Site Scripting
08.08.2023
Mehran Seifalinia
Low
Webedition CMS 2.9.8.8 Cross Site Scripting
06.08.2023
Mirabbas Agalarov
Low
mooSocial 3.1.8 - Reflected XSS
05.08.2023
CraCkEr
Low
Social-Commerce 3.1.6 - Reflected XSS
05.08.2023
CraCkEr
Low
PHPJabbers Availability Booking Calendar 5.0 - Reflected XSS
03.08.2023
CraCkEr
Low
WordPress adivaha Travel Plugin 2.3 - Reflected XSS
03.08.2023
CraCkEr
Med.
OX App Suite SSRF / SQL Injection / Cross Site Scripting
03.08.2023
Mehmet Ince
Low
PHPJabbers Taxi Booking 2.0 Cross Site Scripting
03.08.2023
CraCkEr
Low
PHPJabbers Cleaning Business 1.0 Cross Site Scripting
03.08.2023
CraCkEr
Low
PHPJabbers Service Booking Script 1.0 Cross Site Scripting
03.08.2023
CraCkEr
Low
PHPJabbers Night Club Booking 1.0 Cross Site Scripting
03.08.2023
CraCkEr
Low
PHPJabbers Shuttle Booking Software 1.0 Cross Site Scripting
03.08.2023
CraCkEr
Low
Perch CMS 3.2 Cross Site Scripting
02.08.2023
Andrey Stoykov
Low
Joomla JLex GuestBook 1.6.4 Cross Site Scripting
02.08.2023
CraCkEr
Low
Joomla JLex Review 6.0.1 Cross Site Scripting
01.08.2023
CraCkEr
Low
JLex GuestBook 1.6.4 - Reflected XSS
01.08.2023
CraCkEr
Low
Zomplog 3.9 Cross-site scripting (XSS)
31.07.2023
Mirabbas Ağalarov
Low
Joomla iProperty Real Estate 4.1.1 Cross Site Scripting
31.07.2023
CraCkEr
Low
Copyparty 1.8.6 Cross Site Scripting
31.07.2023
Vartamtezidis Theodoro...
Low
Joomla Solidres 2.13.3 - Reflected XSS
29.07.2023
CraCkEr
Low
Joomla iProperty Real Estate 4.1.1 - Reflected XSS
29.07.2023
CraCkEr
Low
Joomla VirtueMart Shopping-Cart 4.0.12 - Reflected XSS
27.07.2023
CraCkEr
Low
WordPress PrePost SEO 3.0 Cross Site Scripting
27.07.2023
Taurus Omar
Low
WordPress Tablesome Cross Site Scripting
27.07.2023
Taurus Omar
Low
WordPress Login Configurator 2.1 Cross Site Scripting
27.07.2023
Taurus Omar
Low
ETSI WEBstore 2023 Cross Site Scripting
26.07.2023
Vulnerability Laborato...
Low
mooDating 1.2 Cross Site Scripting
25.07.2023
CraCkEr
Low
WordPress SEO Alert 1.59 Cross Site Scripting
25.07.2023
Taurus Omar
Low
Joomla VirtueMart Shopping-Cart 4.0.12 Cross Site Scripting
25.07.2023
CraCkEr
Low
Joomla HikaShop 4.7.4 Cross Site Scripting
25.07.2023
CraCkEr
Low
Perch v3.2 Stored XSS
21.07.2023
Mirabbas Ağalarov
Low
ProjeQtOr Project Management System v10.4.1 Multiple XSS
21.07.2023
Mirabbas Ağalarov
High
Foody Friend 1.0 Arbitrary File Upload / Cross Site Scripting
21.07.2023
CraCkEr
High
Listplace Directory Listing Platform 3.0 File Upload / Cross Site Scripting
21.07.2023
CraCkEr
Low
Tiva Events Calender 1.4 Cross Site Scripting
19.07.2023
Vulnerability Laborato...
Low
Vacation Rental 1.8 Stored Cross-Site Scripting (XSS)
19.07.2023
CraCkEr
Low
Montage 1.0 Cross Site Scripting
18.07.2023
CraCkEr
Low
Wedding Wonders 1.0 Cross Site Scripting
18.07.2023
CraCkEr
Common Weakness Enumeration (CWE)
CVE
Szczegóły
Opis
2024-03-18
CVE-2024-2598
Updating...
Vulnerability in AMSS++ version 4.31, which does not sufficiently encode user-controlled input, resulting in a Cross-Site Scripting (XSS) vulnerability through /amssplus/modules/book/main/select_send_2.php, in multiple parameters. This vulnerability could allow a remote attacker to send a specially crafted URL to an authenticated user and steal their session cookie credentials.
CVE-2024-2597
Updating...
Vulnerability in AMSS++ version 4.31, which does not sufficiently encode user-controlled input, resulting in a Cross-Site Scripting (XSS) vulnerability through /amssplus/modules/book/main/bookdetail_school_person.php, in the 'b_id' parameter. This vulnerability could allow a remote attacker to send a specially crafted URL to an authenticated user and steal their session cookie credentials.
CVE-2024-2596
Updating...
Vulnerability in AMSS++ version 4.31, which does not sufficiently encode user-controlled input, resulting in a Cross-Site Scripting (XSS) vulnerability through /amssplus/modules/mail/main/select_send.php, in multiple parameters. This vulnerability could allow a remote attacker to send a specially crafted URL to an authenticated user and steal their session cookie credentials.
CVE-2024-2595
Updating...
Vulnerability in AMSS++ version 4.31, which does not sufficiently encode user-controlled input, resulting in a Cross-Site Scripting (XSS) vulnerability through /amssplus/modules/book/main/bookdetail_khet_person.php, in the 'b_id' parameter. This vulnerability could allow a remote attacker to send a specially crafted URL to an authenticated user and steal their session cookie credentials.
CVE-2024-2594
Updating...
Vulnerability in AMSS++ version 4.31, which does not sufficiently encode user-controlled input, resulting in a Cross-Site Scripting (XSS) vulnerability through /amssplus/admin/index.php, in multiple parameters. This vulnerability could allow a remote attacker to send a specially crafted URL to an authenticated user and steal their session cookie credentials.
CVE-2024-2593
Updating...
Vulnerability in AMSS++ version 4.31, which does not sufficiently encode user-controlled input, resulting in a Cross-Site Scripting (XSS) vulnerability through /amssplus/modules/book/main/bookdetail_group.php, in the 'b_id' parameter. This vulnerability could allow a remote attacker to send a specially crafted URL to an authenticated user and steal their session cookie credentials.
CVE-2024-2050
Updating...
CWE-79: Improper Neutralization of Input During Web Page Generation (�??Cross-site Scripting�??) vulnerability exists when an attacker injects then executes arbitrary malicious JavaScript code within the context of the product.
CVE-2024-26125
Updating...
Adobe Experience Manager versions 6.5.19 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim�??s browser when they browse to the page containing the vulnerable field.
CVE-2024-26124
Updating...
Adobe Experience Manager versions 6.5.19 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim�??s browser when they browse to the page containing the vulnerable field.
CVE-2024-26120
Updating...
Adobe Experience Manager versions 6.5.19 and earlier are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim�??s browser when they browse to the page containing the vulnerable field.
Copyright
2024
, cxsecurity.com
Back to Top